ISO 17799 and 2100


These security frameworks provide the foundation of any security program and create the basis of any assertions regarding “reasonable care,” “best practices,” and “standard of care.” 2100 is the newest of these two security frameworks and is reputed to be more process oriented. Remember, security is a process, not a state. ISO 2100 helps proceduralize this fact.